Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3130/kopZS0mMlaFK1O8u8DWeaJCeCtY.roa
File: kopZS0mMlaFK1O8u8DWeaJCeCtY.roa (raw, json)
Hash identifier: n0f6qRs90fjBmSBP47+jm/FBN0o5LZDvdw/BOLmj3jY=
Subject key identifier: 92:8A:59:4B:49:8C:95:A1:4A:D4:EF:2E:F0:35:9E:68:90:9E:0A:D6
Certificate issuer: /CN=2B0C50542CA87AA3C12F30C32323062C87102221
Certificate serial: 0F2C
Authority key identifier: 2B:0C:50:54:2C:A8:7A:A3:C1:2F:30:C3:23:23:06:2C:87:10:22:21
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/KwxQVCyoeqPBLzDDIyMGLIcQIiE.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/kopZS0mMlaFK1O8u8DWeaJCeCtY.roa
Signing time: Mon 25 Mar 2024 07:45:21 +0000
ROA not before: Mon 25 Mar 2024 07:45:21 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 45250
IP address blocks: 180.223.16.0/21 maxlen: 24
180.223.24.0/21 maxlen: 24
180.223.32.0/21 maxlen: 24
Validation: Failed, certificate revoked on Mon 25 Mar 2024 08:11:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3884 (0xf2c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2B0C50542CA87AA3C12F30C32323062C87102221
Validity
Not Before: Mar 25 07:45:21 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=928A594B498C95A14AD4EF2EF0359E68909E0AD6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:1b:55:af:99:10:85:97:42:25:72:bc:67:c8:
b1:5d:67:52:3a:29:49:0f:4f:41:eb:58:3a:30:ef:
0e:40:68:0b:12:d8:76:d2:92:5d:52:b9:65:87:ec:
e9:65:8c:51:ef:b2:6c:f4:5b:9b:73:a9:fb:b9:71:
8f:3b:ea:cb:d4:d8:47:99:c7:e2:e2:ea:6f:97:e5:
f8:64:bf:25:e0:76:29:0a:f3:35:0e:f0:12:5b:9d:
fb:0a:a9:63:fc:73:89:c4:94:6d:c7:0f:58:23:00:
e4:57:0c:a1:3a:0e:42:c0:05:2b:ef:b2:71:89:f3:
07:34:73:f6:65:20:ed:96:89:64:92:85:8a:33:97:
c0:17:ee:fc:93:10:8a:34:d5:05:e0:5a:87:e2:ad:
53:34:43:dc:e8:88:1f:4e:67:8e:da:40:ac:49:76:
7a:46:8e:f5:43:8a:08:83:64:44:2a:e4:7d:2c:ae:
1e:fa:4a:de:50:17:1f:d1:ff:da:e9:9d:2c:f2:89:
7d:02:34:97:1b:b5:e4:cb:ae:dc:59:72:35:aa:ca:
ca:52:a6:ce:9a:f9:ff:78:93:ac:c8:b1:38:9f:4f:
80:48:3e:00:a1:3b:c4:87:4a:2e:06:80:83:41:2a:
62:5a:d8:0c:5d:77:60:66:50:46:b5:2d:81:53:d4:
c0:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:8A:59:4B:49:8C:95:A1:4A:D4:EF:2E:F0:35:9E:68:90:9E:0A:D6
X509v3 Authority Key Identifier:
keyid:2B:0C:50:54:2C:A8:7A:A3:C1:2F:30:C3:23:23:06:2C:87:10:22:21
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/KwxQVCyoeqPBLzDDIyMGLIcQIiE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/KwxQVCyoeqPBLzDDIyMGLIcQIiE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/kopZS0mMlaFK1O8u8DWeaJCeCtY.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.223.16.0-180.223.39.255
Signature Algorithm: sha256WithRSAEncryption
a3:e5:58:89:f6:f3:55:19:0d:02:ea:c4:0f:4b:51:3f:a6:90:
81:c6:22:08:57:0e:19:7e:e6:69:d5:b2:d0:e0:d5:1c:be:b5:
2f:1c:66:69:e2:99:30:22:9b:8e:2c:0e:f3:75:b7:a1:75:a5:
47:9f:d8:8c:45:5b:f7:43:e3:14:4e:20:83:48:0e:78:70:9b:
64:f0:8f:f2:f4:59:25:2e:eb:b9:fa:81:c5:9d:c6:68:e1:e2:
ee:ce:56:da:b2:ba:41:20:dc:84:b7:2b:dd:77:cf:29:3a:d0:
64:5f:f9:8d:a2:73:e4:e8:69:c7:59:b3:8b:1c:ad:7e:9c:a6:
9e:70:8f:8e:c0:ad:d5:85:84:9e:dc:12:f9:33:54:60:7d:77:
af:46:88:c8:72:95:50:26:ca:63:57:c8:63:2a:3b:fb:9d:22:
e4:d3:79:9e:54:54:04:e7:38:36:d4:9e:70:65:2c:fc:08:af:
e1:54:6f:78:22:21:de:2c:d0:32:ce:e6:52:aa:14:52:d4:62:
7d:0b:24:8f:83:9b:b3:70:d0:95:d9:20:c3:88:3e:84:92:e6:
67:d0:b5:72:c8:cd:47:41:6d:b1:a2:d8:4a:68:bc:d5:9c:db:
0e:29:a4:0c:13:70:63:e3:c5:e7:09:66:5b:52:c4:08:55:b1:
80:68:34:41
-----BEGIN CERTIFICATE-----
MIIE3zCCA8egAwIBAgICDywwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkIw
QzUwNTQyQ0E4N0FBM0MxMkYzMEMzMjMyMzA2MkM4NzEwMjIyMTAeFw0yNDAzMjUw
NzQ1MjFaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKDkyOEE1OTRCNDk4Qzk1
QTE0QUQ0RUYyRUYwMzU5RTY4OTA5RTBBRDYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCvG1WvmRCFl0IlcrxnyLFdZ1I6KUkPT0HrWDow7w5AaAsS2HbS
kl1SuWWH7OlljFHvsmz0W5tzqfu5cY876svU2EeZx+Li6m+X5fhkvyXgdikK8zUO
8BJbnfsKqWP8c4nElG3HD1gjAORXDKE6DkLABSvvsnGJ8wc0c/ZlIO2WiWSShYoz
l8AX7vyTEIo01QXgWofirVM0Q9zoiB9OZ47aQKxJdnpGjvVDigiDZEQq5H0srh76
St5QFx/R/9rpnSzyiX0CNJcbteTLrtxZcjWqyspSps6a+f94k6zIsTifT4BIPgCh
O8SHSi4GgINBKmJa2Axdd2BmUEa1LYFT1MChAgMBAAGjggH7MIIB9zAdBgNVHQ4E
FgQUkopZS0mMlaFK1O8u8DWeaJCeCtYwHwYDVR0jBBgwFoAUKwxQVCyoeqPBLzDD
IyMGLIcQIiEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzEz
MC9Ld3hRVkN5b2VxUEJMekRESXlNR0xJY1FJaUUuY3JsMGMGCCsGAQUFBwEBBFcw
VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF
M0QwMDAwL0t3eFFWQ3lvZXFQQkx6RERJeU1HTEljUUlpRS5jZXIwDgYDVR0PAQH/
BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y
cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMxMzAva29wWlMwbU1sYUZL
MU84dThEV2VhSkNlQ3RZLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu
bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAnBggrBgEFBQcBBwEB/wQYMBYwFAQCAAEw
DjAMAwQEtN8QAwQDtN8gMA0GCSqGSIb3DQEBCwUAA4IBAQCj5ViJ9vNVGQ0C6sQP
S1E/ppCBxiIIVw4ZfuZp1bLQ4NUcvrUvHGZp4pkwIpuOLA7zdbehdaVHn9iMRVv3
Q+MUTiCDSA54cJtk8I/y9FklLuu5+oHFncZo4eLuzlbasrpBINyEtyvdd88pOtBk
X/mNonPk6GnHWbOLHK1+nKaecI+OwK3VhYSe3BL5M1RgfXevRojIcpVQJspjV8hj
Kjv7nSLk03meVFQE5zg21J5wZSz8CK/hVG94IiHeLNAyzuZSqhRS1GJ9CySPg5uz
cNCV2SDDiD6EkuZn0LVyyM1HQW2xothKaLzVnNsOKaQME3Bj48XnCWZbUsQIVbGA
aDRB
-----END CERTIFICATE-----
Generated at Mon Mar 25 12:45:36 2024 by rpki-client on console-ams.rpki-client.org